1 to 25 of 39 Permanent Threat Modelling Jobs in London

compliance teams to ensure products are secure by design and resilient in production. PSLs define and implement security policies, manage vulnerability backlogs, and lead threat modelling and incident response efforts. What you’ll own Define and implement security policies and tooling across the product lifecycle, from design … development to deployment and maintenance. Lead threat modelling for new and existing applications, guiding teams and ensuring outputs are documented and tracked. Manage the product vulnerability backlog, prioritizing remediation of high and critical vulnerabilities, and tracking key metrics such as open vulnerabilities, SLA compliance, and average ...

carbon energy. We work at the cutting edge of the transition to a sustainable, net zero world. We're looking for a Threat Defence and Cyber Security Operations - Threat Intelligence Lead. Based at our Paddington site, you'll build on the existing URENCO capabilities to further develop … Threat Intelligence function within the Threat Defence and Cyber Security Operations Team. We're looking for a motivated and experienced individual who wants to join a high performing team and be a part of and influence a transformational journey. This role reports to the Head of Threat ...

SAST, DAST, SCA) and work with developers to remediate findings. Support cloud security controls (primarily Azure, including cloud-native apps). Champion secure development, threat modelling, and DevSecOps integration. Research emerging threats and recommend proactive mitigations. Provide mentoring, training, and security awareness support to internal teams. Essential Skills … risk-based security. Relevant certifications such as CISSP, CompTIA Security+, GIAC, or equivalent. Excellent documentation, communication, and stakeholder collaboration skills. Desirable Background in threat modelling or secure software design. Knowledge of ISO27001, Cyber Essentials Plus, or cloud security certifications. Experience in large-scale or regulated environments. What ...

line with Group standards. Ensure that RAG pipelines, tool-use APIs, memory systems and multi-agent workflows follow robust security controls. Threat Modelling for AI Agents & LLM Pipelines Conduct threat modelling specific to AI Agents, including: Prompt injection and cross-agent contamination Tool misuse and unauthorised … across all AI Agent and GenAI products. Training, Guidance & Best Practice Train engineering and product teams on secure agent engineering, Microsoft GenAI security, LLM threat patterns and cyber expectations. Build reusable templates and reference architectures for secure AI Agent implementation. Provide hands-on support to unblock security design challenges. ...

. Youll dissect designs, model attack paths, and show engineering teams what good really looks like. Depending on the engagement, you might run a threat model, assess CI/CD pipelines, learn a vendor DSL for a PoC, or build internal tooling. We dont expect you to know everything … just to be curious, practical, and willing to dive in. What Youll Do Threat Modelling & Architecture Reviews: Break down AWS services, map trust boundaries, build attack trees, and define security requirements before code ships. Security Automation: Build IaC-driven checks, Lambda/Step Function tooling, CI/ ...

dissect designs, model attack paths, and show engineering teams what good really looks like. Depending on the engagement, you might run a threat model, assess CI/CD pipelines, learn a vendor DSL for a PoC, or build internal tooling. They don't expect you to know everything - just … curious, practical, and willing to dive in. What You'll Do Threat Modelling & Architecture Reviews: Break down AWS services, map trust boundaries, build attack trees, and define security requirements before code ships. Security Automation: Build IaC-driven checks, Lambda/Step Function tooling, CI/CD gates ...

dissect designs, model attack paths, and show engineering teams what “good” really looks like. Depending on the engagement, you might run a threat model, assess CI/CD pipelines, learn a vendor DSL for a PoC, or build internal tooling. They don’t expect you to know everything — just … curious, practical, and willing to dive in. What You’ll Do Threat Modelling & Architecture Reviews: Break down AWS services, map trust boundaries, build attack trees, and define security requirements before code ships. Security Automation: Build IaC-driven checks, Lambda/Step Function tooling, CI/CD gates ...

Life on the team The Cyber Threat Operations Team plays a vital role in protecting Computacenter from the latest threats and threat actors. We maintain a forward-looking mentality to identify emerging threats and trends, ensuring we stay one step ahead of security threats. Our team combines specialist … skills in Threat Intelligence, Threat Hunting, Malware Analysis, Digital Forensics, Incident Response, and Threat Modelling. At our core, we are driven by a mission to “investigate, collate and locate”: to unearth new threats, gather all available intelligence, and proactively respond. We apply technical expertise and global awareness ...

client audit requests as they relate to AI use at the firm. Perform detailed security analysis of application architectures to provide assurance. Understand threat modelling and participate in major incidents responses with IAM and AI components. Review and approve the IAM components of solution designs. Collaborate with cloud ...

align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have the opportunity to share … adherence to the change management process when implementing IAM relevant changes to architecture. Perform detailed analysis of application architectures to provide IAM assurance. Understand threat modelling and participate in major incidents responses with IAM components. Review and approve the IAM components of solution designs. Collaborate with cloud infrastructure ...

Responsibilities Design secure cloud architectures across AWS/Azure/GCP for enterprise-scale transformation projects Define and implement application security standards including threat modelling, secure SDLC, API security and DevSecOps practices Conduct security risk assessments, architecture reviews and produce high-level and low-level security designs Advise ...

cloud deployments (private/public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk analysis. Design proportional security controls using native cloud technologies. Produce security architecture artefacts including standards and blueprints. What ...

cloud deployments (private/public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk analysis. Design proportional security controls using native cloud technologies. Produce security architecture artefacts including standards and blueprints. What ...

Security Architect, you will be responsible for overseeing the secure delivery of projects and data platforms; ensuring architectural design reviews (HLD/LLD) and threat models are carried out to a high standard. It is an exciting, fast-paced role that will drive strategic change across the organisation both … Lead Security Architect you will: Work closely with security architects, overseeing their work and providing assurance that architectural design reviews and threat models are carried out consistently to the required standard Ensure the team have the appropriate blueprints, guidance, policies and standards required to complete their work. Take ...

Security Architect, you will be responsible for overseeing the secure delivery of projects and data platforms; ensuring architectural design reviews (HLD/LLD) and threat models are carried out to a high standard. It is an exciting, fast-paced role that will drive strategic change across the organisation both … Lead Security Architect you will: Work closely with security architects, overseeing their work and providing assurance that architectural design reviews and threat models are carried out consistently to the required standard Ensure the team have the appropriate blueprints, guidance, policies and standards required to complete their work. Take ...

AntiVirus/AntiMalware for End User devices Antivirus/Malware/Ransomware etc for Product/Platform DDos Protection Access Management/Review (IAM) Threat modelling Setup Bug Bounty program Application Security/Testing Brand monitoring (domans etc) Whitelist client access Encryption in Transit (confirm 100%) Social Engineering ...

report on IT governance metrics. Software Security & Risk Management Lead application security strategy, including vulnerability management, patching, and secure coding practices. Oversee penetration testing, threat modelling, and remediation plans. Manage identity and access controls across all systems, ensuring least-privilege principles. Systems Process Management Standardise and optimise system ...

business and technology horizon which spans significant parts of RMG and involves significant stakeholder engagement where technological credibility combined with clear communication is vital. Threat modelling. The role holder will perform threat modelling and security impact assessments in order to support development of security architecture blueprints ...

private clouds You're a confident presenter and have accelerated appreciation of security across engineering teams You regularly support building and analysis of threat models using a well defined process You have experience securing data centers and networking devices You're terrified by supply chain and CI/ ...

private clouds You're a confident presenter and have accelerated appreciation of security across engineering teams You regularly support building and analysis of threat models using a well defined process You have experience securing data centers and networking devices You're terrified by supply chain and CI/ ...

private clouds You're a confident presenter and have accelerated appreciation of security across engineering teams You regularly support building and analysis of threat models using a well defined process You have experience securing data centers and networking devices You're terrified by supply chain and CI/ ...

System Auditor (CISA)CMMC certification such as CMMC CCP Demonstrated ability to think strategically about business, product, and technical challenges. Use of attack and threat modeling techniques to inform enterprise risk Master’s degree in computer science, Information Systems Management, Information Security or equivalent experience. Amazon is an equal ...

SLAs, regulatory standards (NCSC, ISO27001) and vendor ecosystems.? Mentor junior architects, contribute to service catalogue evolution and conduct design reviews for risk/threat modelling.? Drive innovation in AIOps, edge computing and sustainability-focused infra for defence-adjacent clients.? Person specification Essential: Active SC clearance with 7+ years ...

DevSecOps Engineer | Fully Remote | £60,000 - £70,000 Our client is a fast-growing cyber-defence and threat-intelligence company committed to protecting organisations from sophisticated cyber threats. They combine advanced security analytics, automation and human expertise to deliver real-time defence across modern cloud and on-prem environments. … they build. The Role: As a DevSecOps Engineer, you will sit at the intersection of development, operations and security. Youll work closely with engineering, threat research, and security operations teams to design, build, and maintain secure, scalable infrastructure and CI/CD pipelines. What Youll do: +Design, maintain ...

risks# Ability to make actionable recommendations for security improvements Experience with GDPR and data protection, together with knowledge of IS standards Security assessment frameworks (threat modelling, controls assessment, risk assessment) Relevant qualifications; CISSP, CISM or similar would be beneficial. Based in Central London, 4 days per week onsite ...